1f2d045de7dd1a4e086e6f22ef123629e21f693cc083cfe8bdd5de41bb65d1cb | Triage

Sharing

General

Target

1f2d045de7dd1a4e086e6f22ef123629e21f693cc083cfe8bdd5de41bb65d1cb
Size

3.7MB
MD5

99927b5bb4a7e9c8f5555ffcf47b12db
SHA1

d080fbe9bf05c1c05edde42b252d099bfb97aab9
SHA256

1f2d045de7dd1a4e086e6f22ef123629e21f693cc083cfe8bdd5de41bb65d1cb
SHA512

17172585c8592955a0b2d93f69bb8d05ebc943ca79f5a78889e49cffb83808f13cf541ce62ecd5f037809189b5a0d21c608d3493494f18ebb0ea8ebe822a5ee0
SSDEEP

98304:Mhh/zapgyDLsIQzAiQhl8K+XGCnvwa005R6n3:Mhhm7DLfgKB+Xzn4O5R6n3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1f2d045de7dd1a4e086e6f22ef123629e21f693cc083cfe8bdd5de41bb65d1cb

Files

1f2d045de7dd1a4e086e6f22ef123629e21f693cc083cfe8bdd5de41bb65d1cb
.exe windows:4 windows x86

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Sections

Size: 292KB - Virtual size: 539KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Size: 24KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: 24KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 8KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.winlice
Size: - Virtual size: 5.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.boot
Size: 3.4MB - Virtual size: 3.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ